Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e0/234dbb-9fe4-4bb8-a974-df1d5205c5d0/1/lqtR-FAzAf1ns55XZQFUZg5A1Y8.roa
File: lqtR-FAzAf1ns55XZQFUZg5A1Y8.roa (raw, json)
Hash identifier: /jCYjtEWIgSwzchdpDuo0VYEtlfceUog/MphvVhDKE4=
Subject key identifier: 96:AB:51:F8:50:33:01:FD:67:B3:9E:57:65:01:54:66:0E:40:D5:8F
Certificate issuer: /CN=d251392cd7e6e40a45c1b8a4479880eef960f330
Certificate serial: 019257D58D5C74A14229AE769FC4BED9966A
Authority key identifier: D2:51:39:2C:D7:E6:E4:0A:45:C1:B8:A4:47:98:80:EE:F9:60:F3:30
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0lE5LNfm5ApFwbikR5iA7vlg8zA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e0/234dbb-9fe4-4bb8-a974-df1d5205c5d0/1/lqtR-FAzAf1ns55XZQFUZg5A1Y8.roa
Signing time: Fri 04 Oct 2024 14:01:06 +0000
ROA not before: Fri 04 Oct 2024 14:01:06 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 214162
IP address blocks: 45.131.91.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e0/234dbb-9fe4-4bb8-a974-df1d5205c5d0/1/0lE5LNfm5ApFwbikR5iA7vlg8zA.crl
rsync://rpki.ripe.net/repository/DEFAULT/e0/234dbb-9fe4-4bb8-a974-df1d5205c5d0/1/0lE5LNfm5ApFwbikR5iA7vlg8zA.mft
rsync://rpki.ripe.net/repository/DEFAULT/0lE5LNfm5ApFwbikR5iA7vlg8zA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 02:00:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:57:d5:8d:5c:74:a1:42:29:ae:76:9f:c4:be:d9:96:6a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d251392cd7e6e40a45c1b8a4479880eef960f330
Validity
Not Before: Oct 4 14:01:06 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=96ab51f8503301fd67b39e57650154660e40d58f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:e0:8e:3e:2d:04:bb:ed:6f:d8:1c:52:99:e2:
da:74:9b:35:80:07:3f:7e:33:0c:53:ef:fb:dd:38:
72:7c:37:2b:27:ff:8f:28:b8:45:2b:1d:e0:af:5c:
71:6d:e0:87:25:bf:a6:55:0b:47:63:ac:9a:db:7c:
ab:51:c9:13:bb:64:e4:75:4c:9a:c3:72:36:df:29:
b1:42:c9:44:2c:19:3f:7d:51:8c:75:3d:e7:04:40:
8a:52:46:13:26:8d:08:5b:dc:0f:e0:52:bc:3d:e1:
6f:98:22:3d:13:6d:c0:cc:31:13:08:b3:36:de:40:
e5:91:b0:dd:de:46:cc:d2:62:59:f1:77:d9:46:2c:
9a:80:a1:51:5b:51:6e:39:88:52:c9:38:09:28:19:
a2:02:cb:ac:fc:e2:34:c1:ef:84:47:5a:65:0b:60:
58:52:f6:18:b8:51:a3:2c:b6:6b:32:85:5e:84:b9:
7e:3a:93:94:a2:6a:93:79:3e:20:59:cf:bb:03:9e:
87:d1:af:17:bf:58:d0:6c:36:1e:ff:42:c8:53:25:
83:88:7d:28:56:db:18:9b:34:f0:e7:ff:68:84:8d:
cf:37:6b:c1:00:13:60:fd:ad:67:32:c4:4c:0f:19:
62:6c:cb:c6:3a:6e:f4:af:05:b5:29:99:ac:9c:0c:
28:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
96:AB:51:F8:50:33:01:FD:67:B3:9E:57:65:01:54:66:0E:40:D5:8F
X509v3 Authority Key Identifier:
keyid:D2:51:39:2C:D7:E6:E4:0A:45:C1:B8:A4:47:98:80:EE:F9:60:F3:30
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0lE5LNfm5ApFwbikR5iA7vlg8zA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e0/234dbb-9fe4-4bb8-a974-df1d5205c5d0/1/lqtR-FAzAf1ns55XZQFUZg5A1Y8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e0/234dbb-9fe4-4bb8-a974-df1d5205c5d0/1/0lE5LNfm5ApFwbikR5iA7vlg8zA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.131.91.0/24
Signature Algorithm: sha256WithRSAEncryption
67:89:4c:a8:98:f9:e4:ac:7a:a6:2c:55:ba:30:82:5c:e6:d4:
f8:4e:be:a9:73:c4:9f:fa:a5:03:df:2b:60:ea:43:26:02:dd:
8e:31:ec:bf:84:80:01:a8:d8:d1:29:15:30:93:16:05:8d:b6:
f5:c0:46:b1:ec:08:57:e2:54:5c:e1:a7:13:88:45:66:37:c8:
f5:76:0d:79:da:02:26:80:b8:64:04:fe:eb:7e:a2:93:33:5f:
4d:a3:e5:3f:22:c0:98:c8:61:0b:a1:eb:bf:7c:41:70:e7:e0:
93:33:5f:b1:0d:d5:64:86:6b:2a:bf:d3:48:09:3e:13:8f:57:
7d:0b:6b:3f:4c:f4:a5:ff:92:25:ed:72:33:f3:f5:b3:7c:0d:
98:28:ed:c6:e5:3a:fb:97:5d:76:cc:d6:8a:34:ea:e5:8f:d7:
f6:e5:35:b5:a2:fa:3c:00:89:5c:53:8c:24:84:d4:40:15:05:
87:6c:4c:79:62:97:91:5b:9f:fb:2a:97:02:cd:55:fb:db:22:
8b:57:38:40:17:8a:df:5d:98:63:6b:29:a9:60:c0:13:54:af:
fa:90:d0:30:f7:0e:e0:ae:3b:19:78:fc:62:8b:6c:6d:9c:76:
d2:8c:bf:1a:93:4e:ba:f9:7b:e6:5e:1d:e9:68:c2:08:7d:ac:
55:f0:28:63
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 10:16:40 2024 by rpki-client on console-fra.rpki-client.org